Collection of Upatre Samples ( alpha version)

Config File for c290126e419ff58678c3e490d89d7343

md5
c290126e419ff58678c3e490d89d7343
source
virusshare
link
download.4n6?sample=acf7af8a197ecbcc1a2ee24a359d7b6ead91223d3988b490e8c8c6896b001b4f
malware_name
tcp_setup.exe
temp_file
tcp_9BB6.log
scandate
0000-00-00 00:00:00
parsed
2015-06-29 21:41:54
decrypt_keys
627758c7
check_keys
3d99f60c
c2_server
81.7.109.65
baseport
9587
useragent
Mozilla/5.0 (Windows NT 6.1)
payload_format
reg
old
0
clientip
icanhazip.com
nr_targets
9
nr_delivery_sites
8
nr_delivery_sites_online
0
nr_payloads
0
ksa
pdir
SATK11
delivered payloads:
no payloads delivered when checked
delivery sites:
1
https://91.240.97.45/satk011.png
2
https://217.12.59.234/satk011.png
3
https://91.240.97.54/satk011.png
4
https://80.87.220.102/satk011.png
5
https://91.240.97.38/satk011.png
6
https://46.151.130.90/satk011.png
7
https://91.240.97.64/satk011.png
8
https://91.240.97.66/satk011.png